Network Flashcards
VPC Benefits
- ability to launch instances into a subnet
- ability to define custom IP address ranges inside of each subnet(private and public);
- ability to configure routed tables between subnets;
- ability to configure internet gateways and attach them to subnets
- ability to create a layered network of resources
- extending our network with VPN/VPG controlled access
- ability to use security groups and subnet network ACLs.
VPC Limits
5 VPCs per region 200 subnets per VPC 50 customer gateways per region 5 internet gateways per region 5 Elastic IP addresses per region for each AWS account 50 VPN connections per region 200 route table per region 500 security groups per region
VPN connection limits
5 VPG per region
1 VPG per VPC
50 customer gateways per region
Bandwidth considerations
– Most VPN connections cannot support consistent 4Gbps data transfer rates.
– AWS Direct Connect offers dedicated network connections
More bandwidth throughput; Consistent performance; Private connection instead of going over the public internet; Direct connect provides 1Gbps and 10 Gbps ports and we can provision multiple connections if we need more capacity.
– APN partners can help establish network circuits to direct connect.
AWS Direct Connect uses BGP routing
– BGP (Border Gateway Protocol)
used by most internet service providers to establish routing information
– use BGP with Autonomous System Number(ASN) and IP prefixes
–an ASN is a unique number to identify networks on the internet.
– amazon will advertise public IP prefixes for a region.
redundant tunnels
one tunnel is always used and the other is for failover only
the customer gateway must be configured for both tunnels.
